JOB-JOB Sp. z o.o. respects users' right to privacy and makes every effort to ensure that users' personal data is processed in accordance with applicable regulations. We use state-of-the-art technical measures and organisational solutions to ensure a high level of protection for the personal data we process and to secure it against unauthorised access.

This Privacy Policy explains the rules and scope of processing users' personal data, their rights and the obligations of the personal data controller. The Privacy Policy forms an integral part of the Terms and Conditions of Providing Services by Electronic Means. Definitions of terms used in this Privacy Policy are included in the Terms and Conditions. The provisions of the Terms and Conditions apply accordingly. Privacy Policy has character informative, what means that no is she source duties for users. Amendments to this Privacy Policy shall be made in accordance with the procedure specified for amendments to the Terms and Conditions.

TERMS

• JOB-JOB – JOB-JOB Sp. z o.o., ul. Królowej Jadwigi 17, 34-400 Nowy Targ, Tax Identification Number (NIP) 7352870407, National Court Register Number (KRS) 0000668443;
• Service – an online platform operating in the job- domainjob.eu;
• Customer/User – a natural person with full legal capacity, and in cases provided for by generally applicable regulations, also a natural person with limited legal capacity or a legal person or an organisational unit without legal personality, which is granted legal capacity by law – who has concluded or intends to conclude an Agreement with JOB-JOB or uses or intends to use at least one Service;
• Product – movable property available on the Website that is the subject of the Sales Agreement between the Customer and JOB-JOB;
• Service – a paid feature available on the Website, which is not of a material nature, being the subject of an Agreement between the Customer and JOB-JOB, or an electronic service provided electronically by JOB-JOB to the Customer via the Website;
• Agreement – Service Agreement concluded or entered into between the Customer and JOB-JOB via the Website or another type of agreement, specified individually in Terms and conditions.

PERSONAL DATA CONTROLLER AND PROCESSING DATA

The controller of personal data within the meaning of Regulation (EU) of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: GDPR) is JOB-JOB Sp. z o.o. with its registered office at ul. Królowe Jadwigi 17, 34-400 Nowy Targ (hereinafter: ADO). Contact with ADO can be made by post to the address of the registered office or by e-mail: info@job-job.eu. The Data Protection Officer is Tomasz Rajski (e-mail: jobjobpoland@gmail.com, tel. 793 966 091).

Personal data is any information about an identified or identifiable natural person. This Privacy Policy applies to all cases in which JOB-JOB is the ADO and processes personal data. The scope of personal data processed includes, in particular, data provided by Users or Customers necessary to use the Services specified in the Terms and Conditions. This applies both to cases where personal data obtained directly from the data subject is processed and to cases where ADO has obtained personal data from other sources.

The controller shall take particular care to protect the interests of data subjects and, in particular, shall ensure that the data collected by him are processed lawfully; collected for specified, legitimate purposes and not further processed in a manner incompatible with those purposes; factually correct and adequate in relation to the purposes for which they are processed and stored in a form that allows the identification of data subjects for no longer than is necessary to achieve the purpose of processing.

The Administrator shall implement technical and organisational measures to ensure the protection of personal data being processed, adequate to the risks of infringement of the rights and freedoms of Users and Customers, in particular, it shall secure the data against unauthorised access, removal by an unauthorised person, processing in violation of applicable regulations, and alteration, loss, damage or destruction.

PURPOSE, LEGAL BASIS AND PROCESSING PERIOD DATA

The purpose, scope and recipients of data processed by ADO are determined each time by the actions taken by the User or Customer on the Website. Possible purposes for the processing of the User's or Customer's personal data by ADO include:

• Conclusion and performance of the Agreement pursuant to: Article 6(1)(b) of the GDPR in relation to the parties to the agreement; Article 6(1)(f) of the GDPR in relation to persons dedicated to the performance of the Agreement – for the duration of the agreement and until the expiry of the limitation periods for pursuing claims. In the case of data of persons dedicated to the performance of the Agreement, the ADO informs that it has obtained this data from the party with whom it has concluded the Agreement. This data may include: name and surname, position, e-mail address, telephone number, details of the company with which the person dedicated to the performance of the Agreement cooperates;
• Determining, pursuing and defending against claims related to the concluded Agreement on the basis of Article 6(1)(f) of the GDPR, i.e. the legitimate interest of the ADO, until the final conclusion of proceedings, including enforcement proceedings;
• Consideration of complaints and claims pursuant to Article 6(1)(c) of the GDPR for one year after the expiry of the warranty period or settlement of the claim;
• Storage of documents, including accounting documents, pursuant to: Article 6(1)(c) of the GDPR – in the case of documents whose storage period is regulated by law; Article 6(1)(f) of the GDPR – in the case of data stored for periods necessary to establish, pursue and defend against claims;
• Conducting marketing activities promoting our own Products and Services without the use of electronic means of communication pursuant to Article 6(1)(f) of the GDPR, i.e. the legitimate interest of the ADO, until an objection is raised;
• Conducting marketing activities for own Products and Services using electronic means of communication, provided that the customer gives their consent.

consent to receive this information via a given communication channel (e.g. e-mail address), until its withdrawal – pursuant to Article 6(1)(f) of the GDPR, i.e. the legitimate interest of the ADO, i.e. conducting marketing activities promoting its own goods and services (until an objection is raised), or pursuant to Article 6(1)(a) of the GDPR, i.e. the consent of the data subject (until it is withdrawn);

• For statistical purposes pursuant to Article 6(1)(f) of the GDPR, i.e. the legitimate interest of the ADO, which consists in collecting information on the statistics of activities carried out and allows for the improvement of operations, until such time as there is another, additional legal basis for processing – in the event of its loss, the data shall be anonymised;
• Responding to enquiries submitted in any form, e.g. via the contact form, including storing sensitive requests and responses in order to comply with the principle of accountability pursuant to Article 6(1)(f) of the GDPR, i.e. the legitimate interest of the ADO. what is communication with Website Users. The data will be processed for the duration of the case, but no longer than for a period of 3 years, unless an objection is raised;
• If ADO becomes aware that the Customer User is using the Service provided electronically in a manner inconsistent with the Terms and Conditions or applicable regulations (unauthorised use), ADO may process the User's personal data to the extent necessary to determine liability. User.

The scope of data made available to ADO is divided into mandatory and non-mandatory data, which is specified in each case in a form adapted to the entry of such data, according to the needs of the Product or Service that the User or Customer intends to use. Providing data is always voluntary, but sometimes necessary for the proper performance of the Service.

DATA RECIPIENTS PERSONAL

Data may be transferred to recipients, i.e.:

• Entities processing data on behalf of ADO with whom service agreements have been concluded, e.g. infrastructure, IT, to the extent necessary for the performance of these agreements;
• Entities enabling remote payment transactions and banks, if settlements are necessary;
• Relevant authorities or public bodies to the extent necessary to comply with legal obligations.

RIGHTS OF THE DATA SUBJECT PERSONAL

Every data subject has the right to access and rectify their data, the right to withdraw consent at any time without affecting the lawfulness of the processing carried out on the basis of consent prior to its withdrawal (provided that the processing is based on consent), the right to lodge a complaint with a supervisory authority, i.e. the President of the Personal Data Protection Office, and, as a rule (depending on the legal basis for processing), the right to: erasure, restriction of processing, data portability, and the right to object.

In particular, we would like to inform you that, that:

• Each person has the right to delete their data. This right is commonly referred to as the „right to be forgotten”. The controller is obliged to delete all data of the person making the request, provided that there is no other legal basis for further processing of such data, which may result from, for example, the obligation to store financial documentation. However, if it is not possible to comply with the request, we will inform you of this and indicate the legal basis.;
• A person whose data is processed by ADO at their express request will receive a file with data structured in a commonly used format. As part of this right, you may also indicate the entity to which we, as the ADO, should send your data. The exercise of this right may take up to 30 days. At the same time, for security reasons, we will verify your identity to ensure that your data is sent to the right person.

DATA SECURITY AND PROTECTION PERSONAL

JOB-JOB declares that it processes the personal data of Users and Customers of the Website in accordance with the GDPR, including the use of technical and organisational measures to ensure the protection of the data being processed, appropriate to the risks and categories of data covered by the protection. In particular, it protects the personal data of Users and Customers of the Website against unauthorised access, loss or damage.

The administrator also points out that using the Internet and electronic services, especially publicly available Wi-Fi networks, may involve specific ICT risks, such as: the presence and activity of Internet worms, spyware or malware, including computer viruses, as well as the possibility of being exposed to cracking or phishing (password fishing), and others. In order to obtain detailed and professional information on how to stay safe on the Internet, ADO recommends consulting entities specialising in this type of IT services.

COOKIES

Cookies are IT data, in particular short text files, stored by a web browser or directly on Users„ end devices intended for use with websites. These files allow the User's device to be recognised and the website to be displayed in accordance with their individual preferences. Cookies usually contain the name of the website they come from, the time they are stored on the end device and a unique number.

Cookies are used in the following objectives:

• creating statistics that help us understand how Users use the Website, which directly influences the improvement of its structure and content;
• maintaining the Website User's session, thanks to which they do not have to re-enter their login and password on every subpage of the Website or perform additional actions, e.g. adding a product to the basket again;

• determining the User's profile in order to display tailored content on advertising networks, in particular the Google network.

The Website uses two basic types of cookies: session cookies and persistent cookies. Session cookies are temporary files that are stored on the User's end device until they log out, leave the Website or turn off the software (web browser). Persistent cookies are stored on the User's end device for the time specified in the cookie parameters or until they are manually deleted by the User.

Software for browsing websites (web browser) usually allows cookies to be stored on the User's end device by default. Website Users may change their settings in this regard. The web browser allows cookies to be deleted. It is also possible to automatically block cookies. files

„cookies. Detailed information on this subject can be found in your browser's help or documentation. website.

Restrictions on the use of cookies may affect some of the functionalities available on the Website.

The user has the right to decide on the access of cookies to their end device by setting the appropriate settings (rights) for these files in the settings window of their web browser.

Leaving the settings of the software installed on the device unchanged by the User on the terminal device means consent to the placement of text files type

„cookies on your device user.

Detailed information on changing cookie settings and deleting cookies in the most popular web browsers is available in the help section of your web browser. You can delete cookies already stored on your device using the appropriate browser functions or other software or applications designed for this purpose. Information on how to delete cookies in individual browsers can be found at the following addresses:

• Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
• Mozilla Firefox: http://support.mozilla.org/pl/kb/usuwanie-cookies
• Microsoft Internet Explorer: http://support.microsoft.com/kb/278835/pl

LOGI SERVER

Information about certain activities undertaken by Users is logged on the server layer. This data is used solely for the purpose of administering the Website.

The resources being viewed are identified by their URL. In addition, the record may be subject to:

• • time of arrival enquiries;
  • time of dispatch answers;
  • User station name – identification performed by the protocol HTTP;
  • information about errors that occurred during the transaction HTTP;
  • URL of the website previously visited by the User (referrer link) – if the transition to the Website took place via a link;

• • browser information User;
  • IP information User.

The above data is not associated with specific individuals browsing the website. The above data is used solely for the purposes of administering the Website.

EXCLUSION LIABILITY

The Privacy Policy does not cover information about services, goods or websites of third parties, offers made available on the Website under agreements with other entities. Third parties determine separate, individual rules for the functioning of their services, goods or websites in their own terms and conditions, at their own discretion and responsibility.

TRANSFER OF DATA OUTSIDE THE EUROPEAN AREA ECONOMIC

The administrator transfers personal data to third countries outside the European Economic Area solely for the purpose for which it was made available to: Google LLC, based in Mountain View, United States, on the basis of the EU-US Data Privacy Framework, in accordance with Article 45. GDPR.